monkey/infection_monkey/network/ping_scanner.py

import logging
import os
import re
import subprocess
import sys

from model.host import VictimHost
from . import HostScanner, HostFinger

__author__ = 'itamar'

PING_COUNT_FLAG = "-n" if "win32" == sys.platform else "-c"
PING_TIMEOUT_FLAG = "-w" if "win32" == sys.platform else "-W"
TTL_REGEX_STR = '(?<=TTL\=)[0-9]+'
LINUX_TTL = 64
WINDOWS_TTL = 128

LOG = logging.getLogger(__name__)


class PingScanner(HostScanner, HostFinger):
    def __init__(self):
        self._config = __import__('config').WormConfiguration
        self._devnull = open(os.devnull, "w")
        self._ttl_regex = re.compile(TTL_REGEX_STR, re.IGNORECASE)

    def is_host_alive(self, host):
        assert isinstance(host, VictimHost)

        timeout = self._config.ping_scan_timeout
        if not "win32" == sys.platform:
            timeout /= 1000

        return 0 == subprocess.call(["ping",
                                     PING_COUNT_FLAG, "1",
                                     PING_TIMEOUT_FLAG, str(timeout),
                                     host.ip_addr],
                                    stdout=self._devnull,
                                    stderr=self._devnull)

    def get_host_fingerprint(self, host):
        assert isinstance(host, VictimHost)

        timeout = self._config.ping_scan_timeout
        if not "win32" == sys.platform:
            timeout /= 1000

        sub_proc = subprocess.Popen(["ping",
                                     PING_COUNT_FLAG,
                                     "1",
                                     PING_TIMEOUT_FLAG,
                                     str(timeout), host.ip_addr],
                                    stdout=subprocess.PIPE,
                                    stderr=subprocess.PIPE)

        output = " ".join(sub_proc.communicate())
        regex_result = self._ttl_regex.search(output)
        if regex_result:
            try:
                ttl = int(regex_result.group(0))
                if LINUX_TTL == ttl:
                    host.os['type'] = 'linux'
                elif WINDOWS_TTL == ttl:
                    host.os['type'] = 'windows'
                return True
            except Exception as exc:
                LOG.debug("Error parsing ping fingerprint: %s", exc)

        return False
Fix ping scanner exceptions 2018-02-07 01:59:04 +08:00			`import logging`
first commit 2015-08-30 15:27:35 +08:00			`import os`
Fix ping scanner exceptions 2018-02-07 01:59:04 +08:00			`import re`
first commit 2015-08-30 15:27:35 +08:00			`import subprocess`
Fix ping scanner exceptions 2018-02-07 01:59:04 +08:00			`import sys`

code organization #2 2015-11-30 20:11:19 +08:00			`from model.host import VictimHost`
Fix ping scanner exceptions 2018-02-07 01:59:04 +08:00			`from . import HostScanner, HostFinger`
first commit 2015-08-30 15:27:35 +08:00
			`__author__ = 'itamar'`

			`PING_COUNT_FLAG = "-n" if "win32" == sys.platform else "-c"`
			`PING_TIMEOUT_FLAG = "-w" if "win32" == sys.platform else "-W"`
add support for simple fingerprinting by: ping, smb, ssh and open ports 2015-09-29 22:55:54 +08:00			`TTL_REGEX_STR = '(?<=TTL\=)[0-9]+'`
			`LINUX_TTL = 64`
			`WINDOWS_TTL = 128`

			`LOG = logging.getLogger(__name__)`
first commit 2015-08-30 15:27:35 +08:00
code organization 2015-11-30 16:56:20 +08:00
add support for simple fingerprinting by: ping, smb, ssh and open ports 2015-09-29 22:55:54 +08:00			`class PingScanner(HostScanner, HostFinger):`
first commit 2015-08-30 15:27:35 +08:00			`def __init__(self):`
			`self._config = __import__('config').WormConfiguration`
			`self._devnull = open(os.devnull, "w")`
add support for simple fingerprinting by: ping, smb, ssh and open ports 2015-09-29 22:55:54 +08:00			`self._ttl_regex = re.compile(TTL_REGEX_STR, re.IGNORECASE)`
first commit 2015-08-30 15:27:35 +08:00
			`def is_host_alive(self, host):`
			`assert isinstance(host, VictimHost)`

add support for simple fingerprinting by: ping, smb, ssh and open ports 2015-09-29 22:55:54 +08:00			`timeout = self._config.ping_scan_timeout`
			`if not "win32" == sys.platform:`
code organization 2015-11-30 16:56:20 +08:00			`timeout /= 1000`
add support for simple fingerprinting by: ping, smb, ssh and open ports 2015-09-29 22:55:54 +08:00
first commit 2015-08-30 15:27:35 +08:00			`return 0 == subprocess.call(["ping",`
			`PING_COUNT_FLAG, "1",`
add support for simple fingerprinting by: ping, smb, ssh and open ports 2015-09-29 22:55:54 +08:00			`PING_TIMEOUT_FLAG, str(timeout),`
first commit 2015-08-30 15:27:35 +08:00			`host.ip_addr],`
			`stdout=self._devnull,`
			`stderr=self._devnull)`
add support for simple fingerprinting by: ping, smb, ssh and open ports 2015-09-29 22:55:54 +08:00
			`def get_host_fingerprint(self, host):`
			`assert isinstance(host, VictimHost)`

			`timeout = self._config.ping_scan_timeout`
			`if not "win32" == sys.platform:`
code organization 2015-11-30 16:56:20 +08:00			`timeout /= 1000`
add support for simple fingerprinting by: ping, smb, ssh and open ports 2015-09-29 22:55:54 +08:00
code organization 2015-11-30 16:56:20 +08:00			`sub_proc = subprocess.Popen(["ping",`
			`PING_COUNT_FLAG,`
			`"1",`
			`PING_TIMEOUT_FLAG,`
			`str(timeout), host.ip_addr],`
			`stdout=subprocess.PIPE,`
			`stderr=subprocess.PIPE)`
add support for simple fingerprinting by: ping, smb, ssh and open ports 2015-09-29 22:55:54 +08:00
			`output = " ".join(sub_proc.communicate())`
			`regex_result = self._ttl_regex.search(output)`
			`if regex_result:`
			`try:`
			`ttl = int(regex_result.group(0))`
			`if LINUX_TTL == ttl:`
			`host.os['type'] = 'linux'`
			`elif WINDOWS_TTL == ttl:`
			`host.os['type'] = 'windows'`
			`return True`
Fix ping scanner exceptions 2018-02-07 01:59:04 +08:00			`except Exception as exc:`
add support for simple fingerprinting by: ping, smb, ssh and open ports 2015-09-29 22:55:54 +08:00			`LOG.debug("Error parsing ping fingerprint: %s", exc)`

			`return False`